Make WordPress Core


Ignore:
Timestamp:
04/28/2009 06:37:51 AM (15 years ago)
Author:
ryan
Message:

attr escaping. see #9650

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-admin/options-permalink.php

    r11109 r11110  
    152152    </tr>
    153153    <tr>
    154         <th><label><input name="selection" type="radio" value="<?php echo $structures[1]; ?>" class="tog" <?php checked($structures[1], $permalink_structure); ?> /> <?php _e('Day and name'); ?></label></th>
     154        <th><label><input name="selection" type="radio" value="<?php echo attr($structures[1]); ?>" class="tog" <?php checked($structures[1], $permalink_structure); ?> /> <?php _e('Day and name'); ?></label></th>
    155155        <td><code><?php echo get_option('home') . $prefix . '/' . date('Y') . '/' . date('m') . '/' . date('d') . '/sample-post/'; ?></code></td>
    156156    </tr>
    157157    <tr>
    158         <th><label><input name="selection" type="radio" value="<?php echo $structures[2]; ?>" class="tog" <?php checked($structures[2], $permalink_structure); ?> /> <?php _e('Month and name'); ?></label></th>
     158        <th><label><input name="selection" type="radio" value="<?php echo attr($structures[2]); ?>" class="tog" <?php checked($structures[2], $permalink_structure); ?> /> <?php _e('Month and name'); ?></label></th>
    159159        <td><code><?php echo get_option('home') . $prefix . '/' . date('Y') . '/' . date('m') . '/sample-post/'; ?></code></td>
    160160    </tr>
    161161    <tr>
    162         <th><label><input name="selection" type="radio" value="<?php echo $structures[3]; ?>" class="tog" <?php checked($structures[3], $permalink_structure); ?> /> <?php _e('Numeric'); ?></label></th>
     162        <th><label><input name="selection" type="radio" value="<?php echo attr($structures[3]); ?>" class="tog" <?php checked($structures[3], $permalink_structure); ?> /> <?php _e('Numeric'); ?></label></th>
    163163        <td><code><?php echo get_option('home') . $prefix  ; ?>/archives/123</code></td>
    164164    </tr>
     
    201201
    202202<p class="submit">
    203     <input type="submit" name="submit" class="button-primary" value="<?php _e('Save Changes') ?>" />
     203    <input type="submit" name="submit" class="button-primary" value="<?php _ea('Save Changes') ?>" />
    204204</p>
    205205  </form>
Note: See TracChangeset for help on using the changeset viewer.